esp@cen&t — Bibliographic data 



1/1 s<— V 



FILE MANAGING METHOD AND FILE MANAGING PROGRAM RECORDING 
MEDIUM 



Publication number: JP2001 202279 (A) 
Publication date: 2001-07-27 



Inventor(s): 
Applicant(s): 
Classification: 
- international 



SHISHIDO ICHIRO 

VICTOR COMPANY OF JAPAN 



G06F12/14; G06F12/00; G06F21/24; G06F1 2/14; G06F12/00; G06F21/00; (IPC1- 
7): G06F12/00; G06F12/14 

- European: 

Application number: JP20000010733 20000119 
Priority number(s): JP2000001 0733 200001 1 9 



Abstract of JP 2001 202279 (A) 

PROBLEM TO BE SOLVED: To provide a file 
managing method for prohibiting copying of a file 
while permitting the reading of the file and a file 
managing program recording medium. SOLUTION: 
An attribute on whether copying of the file is 
prohibited is recorded in a file attribute storing 
means, and the identification number of the file used 
by the process of an application program is recorded 
in a file use managing table. When some process 
requests writing of the file, whether the process 
requesting writing uses a file having the attribute 
prohibiting copying (S213) and when the file having 
the attribute prohibiting copying is used, the writing 
processing operation of the file is not performed. 
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CLAIMS 



[Claim(s)] 

[Claim 1]Afile management method characterized by comprising the following in an operating system which 
performs process control. 

A step which records an attribute which shows whether a duplicate of a file is forbidden on a file attribute 
storing means of a file system. 

When a process uses said file, it is the attribute of said file. 
A flag which shows operation of said file. 

A step which associates a process number of said process of using said file, and is recorded on said file 
use managing table, When a write-in process of performing writing to a file requires writing to said file, 
When it judges whether a process number of said write-in process is already recorded on said file use 
managing table and a process number of said write-in process is already recorded on said file use managing 
table, said write-in process is the attribute of duplication prohibition. 

[Claim 2]A file management method characterized by comprising the following in an operating system which 
performs process control. 

A step which records an attribute which shows whether a duplicate of a file is forbidden on a file attribute 
storing means of a file system. 

When a process uses said file, it is the attribute of said file. 
A flag which shows operation of said file. 

A step which associates a process number of said process of using said file, and is recorded on a file use 
managing table, When a write-in process of performing writing to a file requires writing to said file, It is 
judged whether a process number of a memory share process that said write-in process and a memory 
area can be shared is already recorded on said file use managing table, When a process number of said 
memory share process is already registered into said file use managing table, said memory share process is 
the attribute of duplication prohibition. 

[Claim 3]A file management program recording medium with which a program which enforces the file 
management method according to claim 1 or 2 was recorded. 



[Translation done.] 
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DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention]Especially this invention relates to the thing using a file system about a file 

management method and a file management program recording medium. 

[0002] 

[Description of the Prior Art]In general operating systems, such as UNIX, the power that a file can be 
written is lodged only in a specific user or a specific group, and improving the confidentiality of a file 
content is performed widely. In the conventional operating system, it is possible to perform setting out 
which makes read-out of a file possible and forbids the writing of a file. 
[0003] 

[Problem(s) to be Solved by the Invention]In a general operating system, when read-out of a file is 
permitted, the user who read the file, The user who can reproduce the file in the directory which the user 
writes in and has authority, and has the read-out authority of a file can perform reproduction of the file 
without restriction. On the other hand, in order to forbid the duplicate of a file, access to a file must be 
forbidden extensively. Thus, in the conventional operating system, although read-out of a certain file is 
permitted, a means to forbid the duplicate of the file is not provided. Therefore, it is impossible to perform 
setting out of being able to check the contents of a file and restricting secondary use of a file. 
[0004]Another methods include the method of limiting the read-out authority of a file to a specific 
application program. If a certain specific application program is not used for this, it is the method of 
restricting so that a file cannot be accessed. If the specific application program does not have a copy 
function of a file, reproduction of a file cannot be performed but it becomes possible to forbid the duplicate 
of a file. However, by this method, many application programs corresponding to the kind of files to be used, 
such as a text file and a graphics file, must be created, and it takes great time and effort. Since use of a 
specific application program can be forced, and an application program cannot be developed by itself or the 
application program to which he is used cannot be used in order to access a file, for a user, it is 
dramatically inconvenient. 

[0005]This invention, without forcing a user into use of a specific application program, The function to 
permit read-out of a file and to forbid a duplicate is introduced as a file system, and it aims at providing the 
file management method and file management program recording medium which perform file management. 
[0006] 

[Means for Solving the Problem]To achieve the above objects, in this invention, the attribute of whether a 
duplicate of a file is forbidden is recorded on a file use managing table, and an identification number of said 
file used by a process of an application program is recorded on a file use managing table. When a certain 
process requires writing of a file, an operating system inspects said file use managing table, and writing of a 
file is not operated when a file in which a process which carried out a write request of a file has the 
attribute of duplication prohibition is used. 

[0007]Namely, according to this invention, it is a file management method in an operating system which 
performs process control, A step which records an attribute which shows whether a duplicate of a file is 
forbidden on a file attribute storing means of a file system, A flag which shows the attribute of said file, and 
operation of said file when a process uses said file, A step which associates a process number of said 
process of using said file, and is recorded on said file use managing table, When a write-in process of 
performing writing to a file requires writing to said file, It is judged whether a process number of said write- 
in process is already recorded on said file use managing table, When a process number of said write-in 
process is already recorded on said file use managing table, A step which judges whether said write-in 
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process has read a file which has the attribute of duplication prohibition with reference to said file use 
managing table, When said write-in process has read a file which has the attribute of said duplication 
prohibition, a step controlled not to perform writing to said file of said write-in process, A file management 
method which it has is provided. 

[0008]According to this invention, it is a file management method in an operating system which performs 
process control, A step which records an attribute which shows whether a duplicate of a file is forbidden 
on a file attribute storing means of a file system, A flag which shows the attribute of said file, and operation 
of said file when a process uses said file, A step which associates a process number of said process of 
using said file, and is recorded on a file use managing table, When a write-in process of performing writing 
to a file requires writing to said file, It is judged whether a process number of a memory share process that 
said write-in process and a memory area can be shared is already recorded on said file use managing table, 
When a process number of said memory share process is already registered into said file use managing 
table, When a step which judges whether said memory share process has read a file which has the attribute 
of duplication prohibition with reference to said file use managing table, and a file in which said memory 
share process has the attribute of said duplication prohibition are read, A file management method which 
has a step controlled not to perform writing to said file of said write-in process is provided. 
[0009] Furthermore, according to this invention, a file management program recording medium with which a 
program which enforces a file management method of the above-mentioned invention was recorded is 
provided. 
[0010] 

[Embodiment of the Invention]The embodiment which starts the file management method of this invention 
with reference to drawings below is described. Drawing 6 is a mimetic diagram showing the composition of 
whole this invention. It is roughly divided into two hierarchies, user levels and a system level, as well as the 
hierarchy of the software in a UNIX operating system. When the application program 10 in user levels uses 
the function of operation system, such as reading and writing of a file, a system call is certainly published. 
The process number which becomes settled uniquely is given to ail the application programs 10, and it is 
managed. The unique user number is given and managed by all the users using a system. In the system call 
interface 12, the system call published from the application program 10 is received and analyzed. When a 
system call is related to a file operation, instructions of the system call are told to the file system 14. 
Thus, the composition of whole this invention is the same as the conventional composition. 
[001 1]As a fundamental system call about a file operation, there are four, open (Open) and lead (Read), 
light (Write), and closing (Close). The operating system has the file system 14 and the device driver 16, and 
performs the file operation of the file currently recorded on hardwares, such as the memory measure 1 8. 
The file system 14 is managed in the form where it does not depend for a file on hardware. The device 
driver 16 controls the memory measure 18 of HDD, a CD-ROM drive, etc. 

[001 2] Drawing 7 is a mimetic diagram showing the composition of a file system. The file system 14 
comprises the pathname conversion method 20, the file attribute storing means 22, the file substance 
storing means 24, and the file use managing table 26. As for the pathname conversion method 20, the 
pathname of the file specified by a system call is changed into the file identification number which 
identifies a file uniquely. The attribute of a file is stored in the file attribute storing means 22 about each 
file. The position on the recording device on which the file is actually recorded, etc. are stored in the file 
substance storing means 24. The information which manages the using state of a file is stored in the file 
use managing table 26. 

[0013jD rawing 8 is a mimetic diagram showing the composition of the field of a file attribute storing means. 
About each file, the attribute of a file is recorded on a file identification number field, the owner field, the 
owner authority field, the authority fields other than an owner, a position, a size field of substance, etc. The 
word "field" is omitted, for example, the owner field is only expressed in drawing 8 as the owner. The 
number which identifies a file is recorded on a file identification number field. The user number of the user 
who owns a file is recorded on the owner field. Only the owner of the file recorded on the owner field can 
set up a file attribute now. 

[0014]The owner authority field expresses the file operation which an owner can perform, it reads it so that 
it may explain later, and a flag, a write-in flag, and a duplication prohibition flag are recorded. The authority 
fields other than an owner are expressed with the same form as the owner authority field about the 
authority of users other than a file owner. Although the user was divided roughly other than an owner and 
an owner to two and is managed in this embodiment, it may classify still more finely, or two or more users 
may be summarized in a group, and it may manage. The position and size field of substance express the 
position and size of the field in which the substance of a file is stored. As other attributes, the date and 
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time of creation, an update date, etc. of a file are recorded. 

[001 5] Drawing 9 is a mimetic diagram showing the composition of the owner authority field or the authority 
fields other than an owner. The owner authority field or the authority fields other than an owner have the 
same composition, and a read-out flag, a write-in flag, and a duplication prohibition flag are recorded. When 
a read-out flag is "1", a file can be read, and when it is "0", it cannot read. About a write-in flag, similarly, 
when a write-in flag is "1", a file can be written in, and when it is "0", it cannot write in. When a duplication 
prohibition flag is "1", the duplicate of a file is forbidden, and in the case of "0", the duplicate of a file is 
permitted. 

[001 6] Drawing 10 is a mimetic diagram showing the composition of a file use managing table. A process 
number, a file identification number, a read-out flag, a write-in flag, a duplication prohibition flag, and a valid 
flag are recorded on each entry of the file use managing table 26. The number of the process of the 
application program 10 of using a file is recorded on a process number. The same value as the duplication 
prohibition flag of the attribute of the file shown in drawing 8 is set to a file identification number and a 
duplication prohibition flag. It reads at the time of read-out, a flag writes in at the time of writing, and a flag 
is respectively set to "1." When it is shown that each flag is effective when a valid flag shows the validity 
of file use managing table 26 itself and it is set to "1 " and it is set to "0", the demand of read-out or 
writing becomes invalid. If this file use managing table 26 is referred to, the process number of the process 
using its file besides each flag about that file can be known. 

[001 7] Drawing 1 1 is a flow chart for explaining operation of the application program in the case of reading a 
file. The open system call shown in drawing 1 1 1 a lead system call, and a closing system call, The flow chart 
of the open system call shown in drawing 3 , respectively, the flow chart of the lead system call shown in 
d rawing 4, and the flow chart of the closing system call shown in drawing 5 are shown. It is not concerned 
for the file read to be duplication prohibition, but read-out of a file is possible. Therefore, the process of 
file read-out shown in drawing 1 1 is the same as the process of file read-out of the former. 
[0018]First, operation of a series of the application program and operating system concerning file read-out 
is explained. In the preceding paragraph story which publishes a lead system call, drawing 3 is a flow chart 
for explaining operation of the operating system in the case of publishing an open system call. In Step 
S101, the application program 10 publishes an open system call. The operation classification of the open 
system call at this time is "a lead", and the argument of an open system call is a pathname of the file to 
be used. In Step S103, the file system 14 checks the authority over a check and file operation of a 
pathname. 

[0019]This is performed according to the following procedures. First, the received pathname and the 
directions with which new production is not permitted are given to the pathname conversion method 20, 
and a file identification number is acquired. In this case, when the file equivalent to a pathname does not 
exist, in Step S191, the application program 10 receives an error code as a return value of a system call, 
and forces the reading processing of a file to terminate. Next, when the file equivalent to a pathname 
exists, the user number of the user who is executing the application program 10 is acquired. When the user 
number is in agreement with a file owner, in an owner's authority field, it is checked whether the reading 
flag is "1." When the user who is executing the application program 10 differs from the owner of a file, in 
the authority fields other than an owner, it is checked whether the reading flag is "1." When a user does 
not have the read-out authority of a file, in Step S191, the application program 10 receives an error code 
as a return value of a system call, and forces the reading processing of a file to terminate. When the 
justification of a pathname and a users authority are able to be checked, in Step S105, the file system 14 
sets a valid flag to "1", and creates a new entry to the file use managing table 26. In Step S106, the 
application file 10 receives a file identification number, and ends an open system call. 

[0020] Drawing 4 is a flow chart for explaining operation of the operating system in the case of publishing a 
lead system call. In Step S107, the application program 10 publishes a lead system call. A lead system call 
takes the address of the memory which reads a file identification number and data, and the number of 
bytes to read to an argument. In Step S109, the file system 14 inspects the validity of a file. This 
inspection investigates whether both the read-out flags and valid flags of the entry of the file which 
corresponds [ whether the file identification number specified as the process number of the application 
program 10 is registered into the file use managing table 26 and ] are set to "1." When both are set to "1", 
in Step S1 1 1 , the file system 14 is read to the memory address which had data of the specified file 
specified, and ends a lead system call in Step S112. When it becomes clear by the inspection of Step S109 
that neither of the read-out flag and valid flag of an applicable entry are set to "1 " on the other hand, In 
Step S192, the file system 14 returns an error code to the application program 10 via the system call 
interface 12, and forces the reading processing of a file to terminate. 
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[0021] Drawing 5 is a flow chart for explaining operation of the operating system in the case of publishing a 
closing system call. When the application program 10 ends use of a file, in Step S301, the application 
program 10 publishes a closing system call by making a file identification number into an argument. In Step 
S303, the file system 1 4 updates to "0" the valid flag of the entry of the file use managing table 26 which 
is created, for example at Step S105 or Step S205. A closing system call is ended in Step S305. In the 
stage where the closing system call was published, the entry of the file use managing table 26 is not 
deleted. It is deleted after all of an applicable process and an applicable process, and the process that may 
share a memory are completed. In this specification, a certain process and the process of sharing a 
memory may be called a memory share process. 

[0022] Drawing 12 is a flow chart for explaining operation of the application program in the case of writing in 
a file. The open system call shown in drawing 12 , a Wright system call, and a closing system call, The flow 
chart of the open system call shown in drawing 2 , respectively, the flow chart of the Wright system call 
shown in drawing 1 , and the flow chart of the closing system call shown in drawing 5 are shown. When a 
user is going to reproduce the file by which duplicate permission is carried out, it is possible to write a 
certain file in a new file according to the flow chart shown in drawing 12 . It is possible to reproduce a 
certain file and to create another new file by this. 

[0023] Next, operation of a series of the application program and operating system concerning file writing is 
explained. In the preceding paragraph story which publishes a Wright system call, drawing 2 is a flow chart 
for explaining operation of the operating system in the case of publishing an open system call. In Step 
S201, the application program 10 publishes an open system call. The operation classification of the open 
system call at this time is a "light/' In Step S203, the file system 14 checks the authority over a check and 
file operation of a pathname. Step S203 is performed according to the following procedures. First, the 
received pathname and the directions with which new production is permitted are given to the pathname 
conversion method 20, and a file identification number is acquired. In this case, when the file equivalent to 
a pathname does not exist, a new file identification number is assigned by the pathname conversion method 
20. In rewriting the existing file, it checks inspecting the write-in flag of the "owner authority" of the file, or 
"authority other than an owner", and the user writing in like the case of file read-out, and having authority. 
When a user does not have the write-in authority of a file, in Step S291, the application program 10 
receives an error code as a return value of a system call, and forces the writing processing of a file to 
terminate. When the justification of a pathname and a user's authority are able to be checked, in Step 

5205, the file system 14 creates an entry new as "1" for a valid flag to the file use managing table 26. In 

5206, the application file 10 receives a file identification number, and ends an open system call. 

[0024] Drawing 1 is a flow chart for explaining operation of the operating system in the case of publishing a 
Wright system call. In Step S207, the application program 10 publishes a Wright system call. A Wright 
system call takes a file identification number, the memory address holding the data to write in, and the 
number of bytes to write in to an argument. In Step S209, the file system 14 inspects the validity of a file. 
This inspects whether both the write-in flags and valid flags of the entry which corresponds [ whether the 
file identification number specified as the process number of the application program 10 is registered into 
the file use managing table 26 and ] are set to "1." When these process numbers or file numbers are not 
registered into the file use managing table 26, or when neither the write-in flag nor the valid flag is set to 
"1", In Step S292, the file system 14 returns an error code to the application program 10 via the system 
call interface 12, and forces the writing processing of a file to terminate. 

[0025]Next, in Step S21 1, an operating system searches the process number of the process which 
published the Wright system call and its process, and the process which may share a memory area. As a 
memory share process that a memory area may be shared, the parent process and child process of a 
process which published the Wright system call, for example are mentioned. By investigating the process 
table which an operating system manages shows the child-parent relationship between processes. 
[0026]In Step S213, the file system 14 inspects the duplication prohibition flag of the entry of the file use 
managing table of the file use managing table 26. In this case, the entry to inspect is an entry whose 
process number corresponds with the process number of the process which published the Wright system 
call, or an entry which is in agreement with the process number of the process which may share a memory. 
Such an entry exists, and by "1", when a duplication prohibition flag is moreover "1", the read-out flag of 
an applicable entry does not perform writing processing, but returns an error code to an application 
program in Step S292, and forces the writing processing of a file to terminate. If it does not correspond to 
such conditions, in Step S215, the data of the specified memory address is written in a new file, and a 
Wright system call is ended in Step S216. 

[0027]On the other hand, the case where a user is going to reproduce the file of duplication prohibition is 
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explained below. It shall not have the authority to reproduce, although the user who executes the 
application program 10 has the read-out authority of the target file. According to the flow chart shown in 
drawing 1 1 , an application program reads the file of duplication prohibition. Since read-out of a file is not 
concerned with whether the duplicate of a file is forbidden but is performed, read-out of a file is performed 
normally. Thus, the file of the duplicate origin to which the duplicate is forbidden can be read into a 
memory area as duplication data. The data read into the memory area will be called duplication data. 
[0028] Next, according to the flow chart shown in drawing 1 f an application program tries to write the 
duplication data in a memory area in a new file. However, since the file which has a duplication prohibition 
flag is read, it is recorded on the file use managing table 26 that the duplication prohibition flag of a read- 
out process when this file is read is duplication prohibition. Therefore, it finds that the file system 14 is "1" 
the duplication prohibition flag of a read-out process indicates duplication prohibition to be at Step S213, 
and the writing to a new file is refused for the duplication data in a memory area. As a result, application 
receives an error code and ends the writing processing to a file. Thus, although it is possible, that a user 
reads the file of duplication prohibition cannot write in the read file, and it cannot create a new file. As 
mentioned above, by forming the flag which forbids a duplicate as an attribute of a file, in the file system 14 
which has the conventional opening, a lead, a light, and four system calls of closing, although read-out is 
permitted, a duplicate becomes possible [ setting up so that a permission may not be granted ]. 
[0029] 

[Effect of the Invention]It becomes possible to permit read-out of a file and to forbid the duplicate of a file 
moreover, since it judges whether the duplicate is forbidden or not with reference to the file use managing 
table in which the process from which the file was read was recorded when this invention writes in a file. 
Since this invention uses the function of the file system which is a part of operating system, it does not 
need to force use of application special to a user. It is not necessary to make a special application 
program, and the development cost of an application program is also reduced. 
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[Brief Description of the Drawings] 

[Drawing 1] It is a flow chart for explaining operation of the operating system in the case of publishing a 
Wright system call. 

[Drawing 2] In the preceding paragraph story which publishes a Wright system call, it is a flow chart for 
explaining operation of the operating system in the case of publishing an open system call. 
[Drawing 3] In the preceding paragraph story which publishes a lead system call, it is a flow chart for 
explaining operation of the operating system in the case of publishing an open system call. 
[Drawing 4] It is a flow chart for explaining operation of the operating system in the case of publishing a 
lead system call. 

[Drawing 5] It is a flow chart for explaining operation of the operating system in the case of publishing a 
closing system call. 

[Drawing 6]It is a mimetic diagram showing the composition of whole this invention. 
[Drawing 7] It is a mimetic diagram showing the composition of a file system. 

[Drawing 8] It is a mimetic diagram showing the composition of the field of a file attribute storing means. 
[Drawing 9] It is a mimetic diagram showing the composition of the owner authority field or the authority 
fields other than an owner. 

[Drawing 10] It is a mimetic diagram showing the composition of a file use managing table. 

[ Drawing 1 1]It is a flow chart for explaining operation of the application program in the case of reading a 

file. 

[Drawing 12] It is a flow chart for explaining operation of the application program in the case of writing in a 
file. 

[Description of Notations] 

10 Application program 

12 System call interface 

14 File system 

16 Device driver 

18 Memory measure 

20 Pathname conversion method 

22 File attribute storing means 

24 File substance storing means 

26 File use managing table 
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